Unverified Password Change Vulnerability in Modicon PLCs by Schneider Electric
CVE-2018-7811

9.8CRITICAL

Key Information:

Vendor
Schneider Electric
Status
Embedded Web Servers In All Modicon M340, Premium, Quantum Plcs And Bmxnor0200
Vendor
CVE Published:
30 November 2018

Summary

The vulnerability exists in the embedded web servers of various Modicon PLCs, allowing an unauthenticated remote user to exploit the system by accessing the change password function. This can potentially lead to unauthorized modifications and access to sensitive operational functions, thereby jeopardizing the security of the entire automation system. Mitigation strategies should be employed to secure web server access and ensure user authentication.

Affected Version(s)

Embedded Web Servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200 Embedded Web Servers in all Modicon M340, Premium, Quantum PLCs and BMXNOR0200

References

https://www.tenable.com/security/research/tra-2018-38
x_refsource_MISC
https://www.schneider-electric.com/en/download/document/S...
x_refsource_CONFIRM
https://security.cse.iitk.ac.in/responsible-disclosure
x_refsource_MISC

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.